Claims Appendix 



1 . A method for protecting a stream of data to be transferred between an encryption 
unit and a decryption unit, said method comprising: / 

/ 

encrypting the stream of data at said encryption unit for transferring of 
said encrypted stream of data from said encryption unit to said decryption unit; 

dynamically varying said encrypting ofsaid stream of data at said 
encryption unit over multiple portions of the' stream of data by dynamically 
changing multiple encryption paramet6rs/eraployed for each portion of the stream 
of data and signaling said dynamic change in encryption parameters to said $^ ^ 

decryption unit, said dynamically va^ing of said multiple encryption parameters 

/ 

employed for each portion of the stream of data being responsive to occurrence of 
a predefined condition in said sfream of data; and 

/ ... 

decrypting said encrypted data at the decryption unit, said decryptmg 
accounting for said dynamic varying of said encrypting by said encryption unit 
using said dynaraicall^changed, multiple encryption parameters. 

2. The method of claim 1 , wherein said/fnultiple encryption parameters comprise at 
least two of an encryption key, an encryption gr^rnularity, an encryption density scale, an 
encryption density, an encryption delay, an ©miryption key update variable, and an encryption 
key update data trigger. 

3. Canceled. 

/ 

4. The method of claim^further comprising multiplexing said changed encryption 
parameters and said encrypted data at a sender prior to transferring thereof to a receiver 
containing said decryption unit, and demultiplexing said changed encryption parameters and said 
encrypted data at said receiver. ^ , 

5. The method of claim 1, wherein said dynamically varying comprises dynamically 
varying said multiple encryption parameters based on passage of a predefined number of units of 
physical data or passage of a predefined number of conceptual units of data. 
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6. Canceled. 

7. The method of claim 1, wherein said stream of data comprises a stream of 
compressed data, and wherein said method further comprises decompressing said compressed 
data after said decrypting of said encrypted data by said decryption unit, 

8. The method of claim 7, wherein said stream of compressed data comprises one of 
MPEG encoded video data, MPEG encoded audio data, and Dolby AC-3 audio data. 

9. The method of claim 1, further comprising initializing a plurality of encryption 
parameters based on a sensitivity of said stream of data, said plurality of encryption parameters 
being employed by said encrypting and wherein said changed multiple encryption parameters of 
said dynamically varying comprise multiple encryption parameters of said plurality of encryption 
parameters. 

1 0. The method of claim 1 , wherein said stream of data comprises a stream of MPEG 
compressed data, and said method further comprises setting a plurality of encryption parameters 
for use by said encrypting based upon sensitivity of said stream of MPEG compressed data, and 
wherein said changed multiple encryption parameters comprise multiple encryption parameters 
of said plurality of encry ption parameters. 

1 1 . The method of claim 10, wherein said s^jttmg of said plurality of encryption 
parameters includes establishing at least two of au/mcryption granularity, an initial encryption 
key, a density scale, a density, an encryption^^ay, and a key update data trigger for said stream 
of MPEG encoded data. ^ 

12. Canceled. 

13. The method of claim 1 , wherein said dynamically varying comprises dynamically 
varying said multiple encryption parameters responsive to passage of a predefined number of 
data bits in said stream of data, or alternatively, responsive to passage of a predefined number of 
data units in said stream of data, wherein said data units comprise at least one of a program, a 
sequence, a group of pictures, a picture, a slice, or a macroblock. 
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14. A system for protecting a stream of data comprising: 

/' 
/ 

an encryption unit and a decryption unit, the encryption unit encryptmg 
the stream of data for transfer to the decryption unit; 

means for dynamically varying said encrypting of said stream of data by 
said encryption unit over multiple portions of the stream of data by dynamically 
changing multiple encryption p'arameters employed by each portion of the stream 
of data and signaling said dyi4mic change in encryption parameters employed by 
each portion of the stream 6f data to said decryption unit, said means for 
dynamically varying being responsive to occurrence of a predefined condition in 
said stream of data; and 

/ 

wherein said decryption unit decrypts said encrypted data, said decrypting 
accounting for said/aynamic varying of said encrypting by said encryption unit 
using said dynamically changed, multiple encryption parameters. 

15. Canceled. 

16. The system of claim 14, wherein said stream of data comprises a stream of digital 

data. 

17. The system of claim 14, wherein said means for dynamically varying comprises 
means for dynamically varying said multiple encryption parameters based on passage of a 
predefined number of units of physical data or passage of a predefined number of conceptual 
units of data. 

18. Canceled, 

19. The system of claim 14, wherein said/rfiultiple encryption parameters comprise at 
least two of an encryption key, an encryption gj^fmlarity, an encryption density scale, an 
encryption density, an encryption delay, an/^cryption key update variable, and an encryption 
key update data trigger. ^ _____ 

20. Canceled. 
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2 1 . The system of claim 1 4, further comprising a data multiplexer for multiplexing 
said changed encryption parameters into said encrypted data for transfer thereof to said 
decryption unit. 

22. The system of claim 14, further comprising means for setting a plurality of 
encryption parameters based on sensitivity of said stream of data, said plurality of encryption 
parameters being employed by said encryption unit and wherein said changed multiple 
encryption parameters comprise encryption parameters of said plurality of encryption 
parameters. 

23. The system of claim 22, wherein said stream of data comprises a stream of 
compressed data, and wherein said system further comprises a decoder for decompressing said 
compressed data af^er decrypting thereof by said decryption unit 

24. The system of claim 23, wherein said stream of compressed data comprises a 
stream of one of MPEG encoded video data, MPEG encoded audio data, and Dolby AC-3 audio 
data. - — — — — ^' 



25, The system of claim 22, wherein s^id means for setting said plurality of 
encryption parameters includes means for e^ifeMlishing at least two of an encryption granularity, 
an encryption key, a density scale, a dop^ty, an encryption delay, and a key update data trigger. 

26. The system of claim 14, wherein said means for dynamically varying comprises 
means for changing said multiple encryption parameters based on a predefined number of bits 
being encoded by said encryption unit, or alternatively, based on a predefined number of units 
being encoded by said encryption unit, said units comprising one of a program, a sequence, a 
group of pictures, a picture, a slice, or a macroblock. 
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27. A system for protecting a stream of data to be transferred between a sender and a 
receiver, said system comprising: 

an encryption unit disposed at said sender for encrypting the stream of 
data prior to transfer to said receiver, said encryption unit being adapted to 
dynamically vary encrypting of the stream ot data over multiple portions of the 
sU-eam of data by dynamically changing multiple encryption parameters employed 
for each portion of the stream of data ba^ed on an occurrence of a predefined 
condition in said data stream and sigi^^ding said change in encryption parameters "yZX 
employed for each portion of the s4tmi of data to said receiver; and 

/ C.t^^ 

a decryption unit disposed at said receiver for decrypting said encrypted 
data, said decryption unit bemg adapted to receive said changed encryption 
parameters to account for saad dynamic varying of said encrypting by said 
encryption unit using saidxhanged encryption parameters. 

28. At least one program storage device readable by a^achine, tangibly embodying 
at least one program of instructions executable by the machin/ to perform a method for 
protecting a stream of data to be transferred between an enciyption unit and a decryption unit, 
comprising; / 

encrypting the stream of data at said enc^ption unit for transfer thereof to 
said decryption unit; 

dynamically varying said encrypting^6f said stream of data at said ^ 
encryption unit over multiple portions of thfe stream of data by dynamically 
changing multiple encryption parameters employed for each portion of the stream 
of data and signaling said change in enciyption parameters to said decryption unit, 
wherein said dynamically varying of sa/d multiple encryption parameters 
employed for each portion of the stream of data is responsive to occurrence of a 

predefined condition in said stream of data; and 

/ 
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decrypting said encrypted data at A^ecryption unit, said decrypting 
accounting for said dynamic varying ofsaid encrypting by said encryption imit 
using said dynamically changed, i)auitiple encryption parameters, 

29. The at least one program storage device^f claim 28, wherein said multiple 
encryption parameters comprise at least two of an/^cryption key, an encryption granularity, an 
encryption density scale, an encryption densiu^ m encryption delay, an encryption key update 
variable, and an encryption key update dat^gger. '^/^^Z 



30. Canceled. 



2^ 



3 1 . The at least one program storage device of claim ^9/wherein said method further 
comprises multiplexing said changed encryption parameters and said encrypted data at a sender 
prior to transferring thereof to a receiver containing said decryption unit, and demultiplexing said 
changed encryption parameters and said encrypted dat a at said receiver. 

32. The at least one program storage device of claim 28, wherein said dynamically 
varying comprises dynamically varying said multiple encryption parameters based on passage of 
a predefined mmiber of units of physical data or passage of a predefined number of conceptual 
units of data. 



33. 



Canceled. 



34. The at least one program storage device of claim 28, wherein said stream of data 
comprises a stream of compressed data, and wherein said method further comprises 
decompressing said compressed data afler said decrypting of said encrypted data by said 
decryption unit. 

35. The at least one program storage device of claim 34, wherein said stream of 
compressed data comprises one of MPEG encoded video data, MPEG encoded audio data, and 
Dolby AC-3 audio data. 
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36. The at least one program storage device of claim 28, wherein said method further 
comprises initializing a plurality of encryption parameters based on sensitivity of said stream of 
data, said plurality of encryption parameters being employed by said encrypting and wherein said 
changed multiple encryption parameters of said dynamically varying comprise multiple 
encryption parameters of said plurality of encryption parameters. 

37. The at least one program storage device of claim 28, wherein said stream of data 
comprises a stream of MPEG compressed data, and said method further comprises setting a 
plurality of encryption parameters for use by said encrypting based upon sensitivity of said 
stream of MPEG compressed data, and wherein said changed multiple encryption parameters 
comprise multiple encryption para meters of said plurality of encryption parameters> 

38. The at least one program storage devicJe of claim 37, wherein said setting of said 
plurality of encryption parameters includes est^shing at least two of an encryption granularity, 
an initial encryption key, a density scale, a^nsity, an encryption delay, and a key update data 
trigger for said stream of MPEG enco^ data. 
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